Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-14101

Provide option to select TLS protocol version

    XMLWordPrintable

Details

    • Task
    • Status: Closed (View Workflow)
    • Blocker
    • Resolution: Fixed
    • 10.4.6
    • SSL
    • None

    Description

      Currently it's not possible to run MariaDB with a specific TLS protocol, option --ssl_cipher=:TLSv1.2 excludes cipher suites < TLSv1.2, but doesn't set the protocol to TLSv1.2 only.

      Suggestion:

      --tls-version=versions
      

      Valid values are TLSv1, TLSv1.1, TLSv1.2, TLSv1.3 (OpenSSL only) or a combination (separated by comma) of them.
      If not specified default=TLSv1,TLSv1.1,TLSv1.2, TLSv1.3 will be used for OpenSSL, TLSv1,TLSv1.1 for Yassl.

      Attachments

        1. MDEV_14101_10_2.patch
          21 kB
          Georg Richter
        2. MDEV-14101.patch
          16 kB
          Oleksandr Byelkin
        3. MDEV14101.patch_new
          15 kB
          Georg Richter

        Issue Links

          Activity

            People

              georg Georg Richter
              georg Georg Richter
              Votes:
              2 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.